Forum Discussion

ESFB's avatar
ESFB
Icon for Nimbostratus rankNimbostratus
Sep 11, 2024

Allowed HTTP Response code Blocked

Dear All,

 

Need suggestion:- We have a ASM policy where response status code 403 is whitelisted. But while accessing the application F5 WAF is blocking the event/log with saying "Illegeal HTTP Status in Response" (403). Can i get suggestion on why this behavioral is observed.

 

Thanks in Advance.

  • By default F5 will not allow response code and if we allow this as per link it should allow . Can you check the logs and verify what error your getting. I hope you applied the policy after change and your waf is uptodate .

     

     

    • ESFB's avatar
      ESFB
      Icon for Nimbostratus rankNimbostratus

      Hi, yes we have already establishhed the whitelisting while creating the policy and all changes are applied to policy. This issue is persistant for one particular URL and not the entire VS the policy is mapped to.

    • ESFB's avatar
      ESFB
      Icon for Nimbostratus rankNimbostratus

      Hi Aswin,

       

      We have allowed the response code 403 but still its being blocked by ASM.